$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft File: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft (raw, json) Hash identifier: Th354PhqYPAEuJGGbGXE1WuyOL/YyGHs/ZE7J0glYbk= Subject key identifier: 2F:C7:C6:AA:99:FD:33:F4:6E:E6:26:E6:15:CD:2D:D5:FE:2E:6B:50 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0B14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft Manifest number: 0B0D Signing time: Fri 22 Aug 2025 19:28:37 +0000 Manifest this update: Fri 22 Aug 2025 19:28:37 +0000 Manifest next update: Fri 29 Aug 2025 19:28:37 +0000 Files and hashes: 1: XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl (hash: NIM+4TQOz3pok/O26oAdzyQ1ED63uhl33loSxBPFgbE=) 2: 43272DE249AA11EABABC8610C4F9AE02.roa (hash: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2836 (0xb14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Aug 22 19:28:37 2025 GMT Not After : Aug 29 19:28:37 2025 GMT Subject: CN=68a8c4e5-f948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:32:5a:ed:f2:d1:98:45:27:4a:c4:c9:02:ff: a1:63:fe:a3:d6:f3:ce:3d:d0:e5:9b:f8:f6:c7:fe: 7a:62:58:68:4b:7f:46:8b:0d:e2:07:bf:17:5b:7e: 9c:0d:1a:7f:e3:96:50:4f:d8:5e:e0:a4:56:81:fd: 1a:c8:9f:0f:f0:c6:f3:21:bb:02:10:0e:19:ae:67: 6e:d1:aa:0a:8d:3a:26:24:b2:f5:92:d0:ab:d1:35: a9:a3:66:32:3c:04:d5:eb:e4:66:fd:35:bd:98:6f: 87:e3:d6:fe:9f:a7:68:15:d6:de:f8:35:b0:e9:64: 2e:99:49:5c:d9:03:70:b8:65:7a:dd:93:ff:c4:06: 04:a3:07:ae:03:01:fb:b1:0e:70:68:dc:2d:07:fa: 91:ca:79:ad:f8:20:60:1e:8b:0f:34:1d:f3:07:8d: c6:81:97:c4:64:2d:25:46:35:37:2b:24:2b:32:79: a6:de:e9:9e:d6:16:1e:2a:91:13:87:ef:29:b8:b8: 00:ba:90:7d:7a:94:22:39:26:ae:14:2c:59:74:6a: e7:ad:02:18:87:3d:17:5c:71:b8:2e:d4:be:4f:06: bd:0e:ff:f4:41:c6:e6:95:d9:de:fc:06:1b:d5:0b: b4:51:a7:71:46:df:c1:c2:59:58:13:8e:17:82:b1: 75:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C7:C6:AA:99:FD:33:F4:6E:E6:26:E6:15:CD:2D:D5:FE:2E:6B:50 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:78:e2:60:a0:1c:85:a8:9f:f0:2e:df:4c:5b:35:8c:8d:0c: 5a:90:38:82:b3:85:3a:4c:32:91:b7:0b:e8:f8:9b:3f:7f:46: 4a:14:65:e6:9f:44:03:2a:45:8d:df:58:c4:8a:92:f4:22:67: 98:8e:1e:a0:00:76:4f:7f:c6:80:d5:de:40:90:49:8b:0c:3b: 33:d5:8a:79:8a:fd:c9:93:6d:69:20:44:21:58:c4:10:d0:99: aa:9c:7e:44:2c:c7:67:71:41:37:23:3e:ee:2f:82:54:dc:cc: d0:b6:c6:1a:b0:2f:04:65:09:d4:f7:ef:24:29:5b:e5:3f:f0: 21:58:8c:24:4b:fd:22:14:07:ce:df:b3:6d:ee:70:fd:73:23: 35:92:cb:aa:11:bd:45:e9:94:ed:8a:84:c3:dc:eb:2c:0f:ab: b0:49:c7:02:b9:ef:44:1f:b1:9a:67:0b:71:51:c2:e9:7d:c7: 5f:da:94:8c:c7:5b:46:66:4e:e6:3a:8b:a4:4b:c5:8f:14:36: 07:33:e5:4a:0b:42:e5:08:b3:48:96:35:27:f0:74:d0:ba:ab: 0b:63:86:be:96:b4:64:40:a3:94:a0:d2:ff:98:d9:71:ea:87: 50:4b:1c:33:07:7c:f8:ff:10:53:c0:a6:5d:ee:1b:f7:7c:f0: 02:dd:e1:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwODIyMTkyODM3WhcNMjUwODI5MTkyODM3WjAYMRYwFAYD VQQDEw02OGE4YzRlNS1mOTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzJa7fLRmEUnSsTJAv+hY/6j1vPOPdDlm/j2x/56YlhoS39Giw3iB78XW36c DRp/45ZQT9he4KRWgf0ayJ8P8MbzIbsCEA4Zrmdu0aoKjTomJLL1ktCr0TWpo2Yy PATV6+Rm/TW9mG+H49b+n6doFdbe+DWw6WQumUlc2QNwuGV63ZP/xAYEoweuAwH7 sQ5waNwtB/qRynmt+CBgHosPNB3zB43GgZfEZC0lRjU3KyQrMnmm3ume1hYeKpET h+8puLgAupB9epQiOSauFCxZdGrnrQIYhz0XXHG4LtS+Twa9Dv/0Qcbmldne/AYb 1Qu0UadxRt/BwllYE44XgrF1zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/HxqqZ /TP0buYm5hXNLdX+LmtQMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY3RC84NDhFN0QxODQ5QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1Rq Z001YUNhRUlTX2oxY0o3UWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaeOJgoByFqJ/wLt9MWzWMjQxakDiCs4U6TDKRtwvo+Js/f0ZKFGXm n0QDKkWN31jEipL0ImeYjh6gAHZPf8aA1d5AkEmLDDsz1Yp5iv3Jk21pIEQhWMQQ 0JmqnH5ELMdncUE3Iz7uL4JU3MzQtsYasC8EZQnU9+8kKVvlP/AhWIwkS/0iFAfO 37Nt7nD9cyM1ksuqEb1F6ZTtioTD3OssD6uwSccCue9EH7GaZwtxUcLpfcdf2pSM x1tGZk7mOoukS8WPFDYHM+VKC0LlCLNIljUn8HTQuqsLY4a+lrRkQKOUoNL/mNlx 6odQSxwzB3z4/xBTwKZd7hv3fPAC3eH3 -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:26 2025 by rpki-client